Low-cost wireless keyboards open to keystroke sniffing and injection attacks
Zeljka Zorz
https://www.helpnetsecurity.com/2016/07/26/keystroke-sniffing-wireless-keyboards/
Excerpt:
“Bastille Networks researcher Marc Newlin has discovered a set of security vulnerabilities in low-cost wireless keyboards that could be exploited to collect all passwords, security questions, sensitive personal, bank account and payment card info users input through them.”
DDoS attacks increase 83%, Russia top victim
https://www.helpnetsecurity.com/2016/07/27/ddos-attacks-increase-russia-top-victim/
Excerpt:
“DDoS attacks increased 83 percent to more than 182,900 attacks in the second quarter of the year, according to Nexusguard.”
88% of all ransomware is detected in the healthcare industry
https://www.helpnetsecurity.com/2016/07/27/ransomware-healthcare-industry/
Excerpt:
“Solutionary found that companies in the healthcare industry had the most ransomware present, accounting for 88 percent of all ransomware detections in Q2. In addition, Cryptowall was the top ransomware variant detected during the quarter, accounting for nearly 94 percent of detections.”
Sophisticated ransomware: New tactics to maximize profit
https://www.helpnetsecurity.com/2016/07/27/sophisticated-ransomware/
Excerpt:
“Organizations are unprepared for future strains of more sophisticated ransomware, according to the Cisco 2016 Midyear Cybersecurity Report. Fragile infrastructure, poor network hygiene, and slow detection rates are providing ample time and air cover for adversaries to operate.”
Law enforcement and IT security companies join forces to fight ransomware
https://www.helpnetsecurity.com/2016/07/25/no-more-ransom/
Excerpt:
“Today, the Dutch National Police, Europol, Intel Security and Kaspersky Lab launched the No More Ransom initiative, a new step in the cooperation between law enforcement and the private sector to fight ransomware together.”
Snowden wants you to know when your phone is revealing your location
Zeljka Zorz
https://www.helpnetsecurity.com/2016/07/22/snowden-phone-location/
Excerpt:
“NSA whistleblower Edward Snowden and hardware hacker Andrew “Bunnie” Huang have possibly come up with a solution for warning users when their phones are revealing their location via radio transmissions.”
Alleged Kickass Torrents owner arrested, site taken down
https://www.helpnetsecurity.com/2016/07/21/kickass-torrents-owner-arrested/
Excerpt:
“Artem Vaulin, a 30-year-old Ukrainian that is believed to be the creator and owner of Kickass Torrents, currently the most popular and most visited illegal file-sharing website, has been arrested in Poland on Wednesday.”
Companies are unprepared to protect key assets
https://www.helpnetsecurity.com/2016/07/22/protect-key-assets/
Excerpt:
“Knowledge assets are confidential information critical to a company’s core business – other than personal information that would trigger notice requirements under law – including trade secrets and corporate confidential information such as product design, development or pricing; other non-public information about the organization, its plans or relationships; or other crucial customer information.”
Anonymous Launches DDoS Attack Against Rio Court That Blocked WhatsApp in Brazil
Catalin Cimpanu
http://news.softpedia.com/news/anonymous-launches-ddos-attack-against-rio-court-that-blocked-whatsapp-in-brazil-506468.shtml
Excerpt:
“The Brazil branch of the Anonymous hacker collective has launched a DDoS attack against the website (tjrj.jus.br) of the Rio court that banned WhatsApp usage across the country.”
Overreliance on perimeter-based defense creates opportunities for attackers
https://www.helpnetsecurity.com/2016/07/21/perimeter-based-defense/
Excerpt:
“RSA has announced the results of research that demonstrates organizations in Asia Pacific & Japan (APJ) investing in detection and response technologies are better poised to defend against today’s advanced threats, in comparison to those primarily utilizing perimeter-based solutions.”
Taiwan ATMs 'robbed of $2.5m by European hackers'
http://www.bbc.co.uk/news/world-asia-36824507
Excerpt:
“Three foreign suspects have been arrested in Taiwan in connection with the theft of $2.5m (£1.9m) from cash machines around the country.”
UK rail network hit by multiple cyber attacks last year
Cara McGoogan and Lydia Willgress
http://www.telegraph.co.uk/technology/2016/07/12/uk-rail-network-hit-by-multiple-cyber-attacks-last-year/
Excerpt:
“The UK railway network was the victim of at least four major cyber attacks in the last 12 months, according to a private security company that works with the network.”
Carbanak Gang Tied to Russian Security Firm?
Brian Krebs
http://www.krebsonsecurity.com/2016/07/carbanak-gang-tied-to-russian-security-firm/
Excerpt:
“Among the more plunderous cybercrime gangs is a group known as “Carbanak,” Eastern European hackers blamed for stealing more than a billion dollars from banks. Today we’ll examine some compelling clues that point to a connection between the Carbanak gang’s staging grounds and a Russian security firm that claims to work with some of the world’s largest brands in cybersecurity.”
DDoS attacks continue to escalate in both size and frequency
https://www.helpnetsecurity.com/2016/07/19/ddos-attacks-escalate/
Excerpt:
“Arbor Networks released global DDoS attack data for the first six months of 2016 that shows a continuing escalation in the both the size and frequency of attacks.”
Chinese Hackers Deface Two Philippines Government Websites
Catalin Cimpanu
http://news.softpedia.com/news/chinese-hackers-deface-two-philippines-government-websites-506385.shtml
Excerpt:
“Hackers claiming to be Chinese have defaced official government portals for two local government units (LGUs) from the Philippines.”
Android Trojan prevents victims from calling their banks
Zeljka Zor
https://www.helpnetsecurity.com/2016/07/15/android-trojan-prevents-calls/
Excerpt:
“Some malware prevents victims to visit sites from which they could download antivirus software, or kills AV software found running on the infected machines and devices.”
US sentences Chinese hacker for stealing military information
http://www.bbc.com/news/world-us-canada-36791114
Excerpt:
“A Chinese businessman who pleaded guilty to hacking sensitive military information has been sentenced to nearly four years in prison in the US.”
Privacy row over FBI iris scan 'trial'
http://www.bbc.com/news/technology-36783515
Excerpt:
“The FBI has collected nearly 430,000 iris scans over the past three years, an investigation by technology website The Verge, has revealed.”
Hackers Steal Data from Polish Defence Ministry and Ask for $50,000 Ransom
Catalin Cimpanu
http://news.softpedia.com/news/hackers-steal-data-from-polish-defense-ministry-and-ask-for-a-50-000-ransom-506342.shtml
Excerpt:
“A group of hackers who call themselves "Pravyy Sector" [Right Sector] are extorting the Polish Government on Twitter, threatening to release data stolen from Poland's Defence Ministry if the government doesn't pay $50,000, either to a Ukrainian bank account or a Bitcoin address.”
76% of companies believe IoT is critical to success
https://www.helpnetsecurity.com/2016/07/15/iot-success/
Excerpt:
“Vodafone published its global survey of business sentiment regarding innovation and investment in the Internet of Things. The survey was conducted by Circle Research in April and May 2016 and involved more than 1,096 companies around the world.”
Cash Mules for Russian Cyber-Crime Syndicate Sent to Jail
Catalin Cimpanu
http://news.softpedia.com/news/cash-mules-for-russian-cyber-crime-syndicate-sent-to-jail-506293.shtml
Excerpt:
“British authorities sent to jail five Russian nationals living in the UK for money laundering operations involving funds stolen via banking malware.”
Russians and Malware Involved in $2 Million ATM Heist in Taiwan
Catalin Cimpanu
http://news.softpedia.com/news/russians-and-malware-involved-in-2-million-atm-heist-in-taiwan-506247.shtml
Excerpt:
“Taiwan's top eight banks have suspended operations on 900 ATMs after crooks stole NT$70 million ($2.18 million) from 20 branches across two cities over the weekend.”
EU to invest €450 million in cybersecurity research
https://www.helpnetsecurity.com/2016/07/06/eu-cybersecurity-investment/
Excerpt:
“The European Commission launched a new public-private partnership on cybersecurity that is expected to trigger €1.8 billion of investment by 2020. The EU cybersecurity investment will be €450 million. This is part of a series of new initiatives to better equip Europe against cyber-attacks and to strengthen the competitiveness of its cybersecurity sector.”
New Mac OS X backdoor disguised as document converter app
Zeljka Zorz
https://www.helpnetsecurity.com/2016/07/06/mac-os-x-backdoor/
Excerpt:
“Bitdefender researchers have discovered and analyzed a new, highly dangerous piece of malware targeting Mac systems and users.”
Irish government to ask for communications interception powers
Max Metzger
http://www.scmagazineuk.com/irish-government-to-ask-for-communications-interception-powers/article/507438/
Excerpt:
“Ireland's deputy prime minister, Frances Fitzgerald, is expected to propose new powers to intercept communications today.”
Using a Colleague's Willingly Shared Password Considered "Hacking" in the US
Catalin Cimpanu
http://news.softpedia.com/news/using-a-colleague-s-willingly-shared-password-considered-hacking-in-the-us-506021.shtml
Excerpt:
“The California 9th Circuit Court of Appeals ruled yesterday that if a person uses a password willingly shared by someone else, it still constitutes a "hacking" offense in certain circumstances, according to the ancient CFAA (Computer Fraud and Abuse Act) law.”
The many faces of ransomware
Mordechai Guri
https://www.helpnetsecurity.com/2016/07/06/ransomware-everywhere/
Excerpt:
“Ransomware has grabbed mainstream media attention recently but it’s nothing new – in fact, its origins can be traced back to floppy disk times. Part of ransomware’s new found notoriety is certainly due to the criminals’ latest target of choice, the healthcare industry, which is considered sacrosanct to most. And ransomware’s very nature lends itself to news-worthy headlines.”
United Nations says government disruption of internet is a human rights violation
Eric David
http://siliconangle.com/blog/2016/07/04/united-nations-says-government-disruption-of-internet-is-a-human-rights-violation/
Excerpt:
“The United Nations recently passed a non-binding resolution that condemns countries that intentionally disrupts their citizens’ internet access, arguing that “the same rights that people have offline must also be protected online, in particular freedom of expression, which is applicable regardless of frontiers and through any media of one’s choice.”
Hackers are coming for your healthcare records -- here’s why
Lucas Mearian
http://www.csoonline.com/article/3090553/security/hackers-are-coming-for-your-healthcare-records-heres-why.html
Excerpt:
“Data stolen from a bank quickly becomes useless once the breach is discovered and passcodes are changed. But data from the healthcare industry, which includes both personal identities and medical histories, can live a lifetime.”
Android Keyboard App with over 50 Million Installs Secretly Collects Your Data
Catalin Cimpanu
http://news.softpedia.com/news/android-keyboard-app-with-over-50-million-installs-secretly-collects-your-data-505935.shtml
Excerpt:
“Google removed one of its Top 20 most popular Android apps from the Play Store after an investigation from Pentest, a UK-based cyber-security firm who discovered that the application violated the Mountain View-based giant's policies by showing a deceptive behavior.”
As threats evolve, faster response times are essential
https://www.helpnetsecurity.com/2016/07/01/threats-evolve-faster-response-times-essential/
Excerpt:
“Two thirds of respondents to a global survey by the Business Continuity Institute reported that they had experienced at least one cyber incident during the previous twelve months, and 15% reported they had experienced at least ten incidents during the same period.”
Read full article
